CVE-2018-19969

2018-12-1117:29:00

Google

osv.dev

7.2 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.1%

JSON

phpMyAdmin 4.7.x and 4.8.x versions prior to 4.8.4 are affected by a series of CSRF flaws. By deceiving a user into clicking on a crafted URL, it is possible to perform harmful SQL operations such as renaming databases, creating new tables/routines, deleting designer pages, adding/deleting users, updating user passwords, killing SQL processes, etc.

CPENameOperatorVersion
phpmyadmineqRELEASE_4_8_1
phpmyadmineqRELEASE_4_8_0
phpmyadmineqRELEASE_4_8_2
phpmyadmineqRELEASE_4_8_3
phpmyadmineqRELEASE_4_8_0_1